Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

kubevirt: Run afterburn-hostname service #1005

Merged
merged 1 commit into from
Nov 14, 2023

Conversation

qinqon
Copy link
Contributor

@qinqon qinqon commented Oct 23, 2023

The KubeVirt platform is already supported by afterburn to set the hostname, also there is an official fedora coreos container disk to run it. This change include it in the list of platforms allowed to run afterburn hostname feature at startup.

Close https://issues.redhat.com/browse/OCPBUGS-22259

@travier
Copy link
Member

travier commented Oct 23, 2023

Can you also update the docs?
Can you also link where the hostname support has been added?

@travier
Copy link
Member

travier commented Oct 23, 2023

Looks like everything was added in #725

@jlebon
Copy link
Member

jlebon commented Oct 25, 2023

Won't this override the hostname if DHCP did provide it? Are they always guaranteed to be the same? If not, should the one in the metadata win?

@qinqon
Copy link
Contributor Author

qinqon commented Oct 26, 2023

Won't this override the hostname if DHCP did provide it? Are they always guaranteed to be the same? If not, should the one in the metadata win?

Have to verify it, but my idea is that afterburn comes before ignition, so if ignition goes after and activate network interfaces DHCP will override the hostname.

@jlebon
Copy link
Member

jlebon commented Oct 26, 2023

Won't this override the hostname if DHCP did provide it? Are they always guaranteed to be the same? If not, should the one in the metadata win?

Have to verify it, but my idea is that afterburn comes before ignition, so if ignition goes after and activate network interfaces DHCP will override the hostname.

afterburn-hostname.service runs after networking is up and before the Ignition files stage. The logic is that users can always override the auto-detected hostname via Ignition.

As is, with this PR the hostname from afterburn-hostname.service will take precedence over the DHCP-provided one. That may be the right thing to do, but I just want to make sure in case that wasn't considered.

@qinqon
Copy link
Contributor Author

qinqon commented Oct 27, 2023

Won't this override the hostname if DHCP did provide it? Are they always guaranteed to be the same? If not, should the one in the metadata win?

Have to verify it, but my idea is that afterburn comes before ignition, so if ignition goes after and activate network interfaces DHCP will override the hostname.

afterburn-hostname.service runs after networking is up and before the Ignition files stage. The logic is that users can always override the auto-detected hostname via Ignition.

As is, with this PR the hostname from afterburn-hostname.service will take precedence over the DHCP-provided one. That may be the right thing to do, but I just want to make sure in case that wasn't considered.

Will post results here, I think we have something at ignition that triggers DHCP again.

@qinqon
Copy link
Contributor Author

qinqon commented Oct 27, 2023

Won't this override the hostname if DHCP did provide it? Are they always guaranteed to be the same? If not, should the one in the metadata win?

Have to verify it, but my idea is that afterburn comes before ignition, so if ignition goes after and activate network interfaces DHCP will override the hostname.

afterburn-hostname.service runs after networking is up and before the Ignition files stage. The logic is that users can always override the auto-detected hostname via Ignition.

As is, with this PR the hostname from afterburn-hostname.service will take precedence over the DHCP-provided one. That may be the right thing to do, but I just want to make sure in case that wasn't considered.

You right, after attaching a dnsmasq to the interface with special hostname I see it's serving it

dnsmasq-dhcp: DHCPDISCOVER(br0) 92:32:d3:7a:da:b5 
dnsmasq-dhcp: DHCPOFFER(br0) 192.168.67.11 92:32:d3:7a:da:b5 
dnsmasq-dhcp: DHCPREQUEST(br0) 192.168.67.11 92:32:d3:7a:da:b5 
dnsmasq-dhcp: DHCPACK(br0) 192.168.67.11 92:32:d3:7a:da:b5 worker1-dnsmasq

But hostnamectl shows that we have the old name

$ hostnamectl status
     Static hostname: worker1
           Icon name: computer-vm
             Chassis: vm 🖴
          Machine ID: 8915d4e1a7b44981a77fec7f6455db69
             Boot ID: 7ad1e933e1ce41b8ba9d954c0612589d
      Virtualization: kvm
    Operating System: Fedora CoreOS 38.20231027.dev.1 
         CPE OS Name: cpe:/o:fedoraproject:fedora:38
      OS Support End: Tue 2024-05-14
OS Support Remaining: 6month 2w 2d
              Kernel: Linux 6.5.8-200.fc38.x86_64
        Architecture: x86-64
     Hardware Vendor: KubeVirt
      Hardware Model: None
    Firmware Version: 1.16.1-1.el9
       Firmware Date: Tue 2014-04-01

@qinqon
Copy link
Contributor Author

qinqon commented Oct 27, 2023

@jlebon maybe for kubevirt we can set the "transient" hostname so it can be overriden by DHCP

@qinqon
Copy link
Contributor Author

qinqon commented Oct 27, 2023

I have test the following

ExecStart=/usr/bin/afterburn --cmdline --hostname=/tmp/hostname                 
ExecStart=/sysroot/usr/bin/hostname -F /tmp/hostname              

And it works as expected and the hostname is set if no DHCP hostname is received but overriden if DHCP hostname option is arrives.

But I don't know how to make this conditional to kubevirt.

We can see hostname is transient

Static hostname: (unset)                         
Transient hostname: worker1

UPDATE: An option would be to create a new afterburn-transient-hostname that do that for specific platform in this case kubevirt.

@dustymabe
Copy link
Member

@jlebon
As is, with this PR the hostname from afterburn-hostname.service will take precedence over the DHCP-provided one. That may be the right thing to do, but I just want to make sure in case that wasn't considered.

I kind of think this should be the behavior. What is the behavior on other platforms?

DHCP can be unreliable, i.e. if there are multiple networks and all of them provide a hostname via DHCP, which one wins? I think the way NM works today is to choose the one with the default route, but if the hostname is set in the metadata for an instance I think we should just use that.

Copy link
Member

@jlebon jlebon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As is, with this PR the hostname from afterburn-hostname.service will take precedence over the DHCP-provided one. That may be the right thing to do, but I just want to make sure in case that wasn't considered.

I kind of think this should be the behavior. What is the behavior on other platforms?

I'm not sure if any of the other providers in that unit would allow you to customize DHCP to that extent. But if any did, the metadata would clearly win since the unit would run. There are some providers that do provide metadata for the hostname that are not listed in the unit however: PowerVS, OpenStack, and Packet. I'm not sure if their omission from the unit is an oversight or on purpose.

DHCP can be unreliable, i.e. if there are multiple networks and all of them provide a hostname via DHCP, which one wins? I think the way NM works today is to choose the one with the default route, but if the hostname is set in the metadata for an instance I think we should just use that.

That sounds reasonable to me. My intuition is also that the metadata should win, but what made me hesitate is that because we shipped KubeVirt support without this from day 1, the status quo currently is that we're relying on DHCP hostnames. So this can be a noticeable behaviour change to users currently relying on the node defaulting to the DHCP hostname (if it differs from the metadata). And maybe that's OK but it's worth flagging.

@qinqon Can you add a release note item for this?

@@ -13,6 +13,7 @@ ConditionKernelCommandLine=|ignition.platform.id=hetzner
ConditionKernelCommandLine=|ignition.platform.id=ibmcloud
ConditionKernelCommandLine=|ignition.platform.id=scaleway
ConditionKernelCommandLine=|ignition.platform.id=vultr
ConditionKernelCommandLine=|ignition.platform.id=kubevirt
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Note the list is in alphabetical order. Can you insert it in the right spot?

@qinqon
Copy link
Contributor Author

qinqon commented Oct 30, 2023

As is, with this PR the hostname from afterburn-hostname.service will take precedence over the DHCP-provided one. That may be the right thing to do, but I just want to make sure in case that wasn't considered.

I kind of think this should be the behavior. What is the behavior on other platforms?

I'm not sure if any of the other providers in that unit would allow you to customize DHCP to that extent. But if any did, the metadata would clearly win since the unit would run. There are some providers that do provide metadata for the hostname that are not listed in the unit however: PowerVS, OpenStack, and Packet. I'm not sure if their omission from the unit is an oversight or on purpose.

DHCP can be unreliable, i.e. if there are multiple networks and all of them provide a hostname via DHCP, which one wins? I think the way NM works today is to choose the one with the default route, but if the hostname is set in the metadata for an instance I think we should just use that.

That sounds reasonable to me. My intuition is also that the metadata should win, but what made me hesitate is that because we shipped KubeVirt support without this from day 1, the status quo currently is that we're relying on DHCP hostnames. So this can be a noticeable behaviour change to users currently relying on the node defaulting to the DHCP hostname (if it differs from the metadata). And maybe that's OK but it's worth flagging.

I think there are not much users of the fcos/rhcos kubevirt provider, up until recently we were using openstack provider since kubevirt provide didn't exist there, so I doubt we would break a lot of installations if we change the status quos here.

Also if we honor the hostname metadata and we add knob at kubevirt so is not set on creation per VM then we can keep the old behaviour, we have to check with cloud-init too, since KubeVirt supports that.

@qinqon Can you add a release note item for this?

Sure.

@qinqon qinqon force-pushed the kubevirt-run-afterburn-hostname-service branch from e7470fb to 68ab211 Compare October 30, 2023 07:13
@qinqon
Copy link
Contributor Author

qinqon commented Oct 30, 2023

Have check what cloud-init is doing for rhel related to hostname metadata value and looks like they have an extra knob to make it static or transient if it's handled by systemd and we can use hostnamectl

https://github.com/number5/cloud-init/blob/76972b4a35681d2adbdb2bc0f95a3611eab146fb/cloudinit/distros/rhel.py#L110-L123

Maybe we can do similar at afterburn and read this extra knob.

Copy link
Member

@jlebon jlebon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

OK, good to know breakage isn't much of a concern.

Have check what cloud-init is doing for rhel related to hostname metadata value and looks like they have an extra knob to make it static or transient if it's handled by systemd and we can use hostnamectl

number5/cloud-init@76972b4/cloudinit/distros/rhel.py#L110-L123

Maybe we can do similar at afterburn and read this extra knob.

This is configured via a cloud-init config file I suppose? I don't think we want to have a dep on that here. And of course, it won't be configurable via Ignition since we run before those files are written. :) But also, currently afterburn-hostname.service runs just on first boot and transient hostnames don't survive a reboot.

I'm also unsure if there's a legitimate use case for doing this. Note that the hostname can always be overridden via Ignition. And having consistency cross-platform is valuable.

Let's stick with this and we can always tweak things in the future if a compelling use case shows up.

LGTM overall, just one tweak!

docs/release-notes.md Outdated Show resolved Hide resolved
@qinqon
Copy link
Contributor Author

qinqon commented Oct 31, 2023

@jlebon Can we put this on holdm ? We are going to discuss about it today at team's sync. Maybe we prefer different approach at MCO openshift/machine-config-operator#4005

Looks like there are other providers that has similar stuff under MCO

@qinqon
Copy link
Contributor Author

qinqon commented Oct 31, 2023

/hold

@qinqon
Copy link
Contributor Author

qinqon commented Oct 31, 2023

OK, good to know breakage isn't much of a concern.

Have check what cloud-init is doing for rhel related to hostname metadata value and looks like they have an extra knob to make it static or transient if it's handled by systemd and we can use hostnamectl
number5/cloud-init@76972b4/cloudinit/distros/rhel.py#L110-L123
Maybe we can do similar at afterburn and read this extra knob.

This is configured via a cloud-init config file I suppose? I don't think we want to have a dep on that here. And of course, it won't be configurable via Ignition since we run before those files are written. :) But also, currently afterburn-hostname.service runs just on first boot and transient hostnames don't survive a reboot.

I'm also unsure if there's a legitimate use case for doing this. Note that the hostname can always be overridden via Ignition. And having consistency cross-platform is valuable.

Let's stick with this and we can always tweak things in the future if a compelling use case shows up.

LGTM overall, just one tweak!

Ahh right, we can create the persistent hostname and then at ignition convert it to transient before NetworkManager, but at least we have a hostname set.

@jlebon
Copy link
Member

jlebon commented Nov 3, 2023

We need to make sure we don't break HyperShift + KubeVirt before merging this (see discussions in openshift/machine-config-operator#4005).

@qinqon
Copy link
Contributor Author

qinqon commented Nov 14, 2023

/hold cancel

@jlebon @dustymabe all good from hypershift to merge this and go with the solution we talk about

The KubeVirt platform is already supported by afterburn to set the
hostname, also there is an official fedora coreos container disk to run
it. This change include it in the list of platforms allowed to run
afterburn hostname feature at startup.

Signed-off-by: Enrique Llorente <[email protected]>
@qinqon qinqon force-pushed the kubevirt-run-afterburn-hostname-service branch from e16fcb1 to 8783c39 Compare November 14, 2023 15:53
Copy link
Member

@dustymabe dustymabe left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@jlebon jlebon enabled auto-merge November 14, 2023 16:15
@jlebon jlebon merged commit b6cda33 into coreos:main Nov 14, 2023
9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants